Lucene search

K

MitreCVELIST:CVE-2022-38538

HistorySep 13, 2022 - 12:00 a.m.

CVE-2022-38538

2022-09-1300:00:00

mitre

www.cve.org

archery vulnerability sqlinjection reportmodule checksum cve-2022-38538

0.002 Low

EPSS

Percentile

54.5%

Archery v1.7.0 to v1.8.5 was discovered to contain a SQL injection vulnerability via the checksum parameter in the report module.

References

announcements.bybit.com/en-US/article/bybit-improves-the-security-of-the-open-source-community-blt626818c0ee8c48a6/

github.com/hhyo/Archery/blob/v1.8.5/sql/urls.py#L145

github.com/hhyo/Archery/issues/1841

0.002 Low

EPSS

Percentile

54.5%

Related for CVELIST:CVE-2022-38538

cve1 osv1 nvd1 prion1